Skip to content

uds-se/fuzzingbook

Repository files navigation

Python Tests   Notebook Tests   Static Type Checking   Imports   Website www.fuzzingbook.org

Launch Binder   Made with Python   Made with Jupyter   License: MIT (Code), CC BY-NC-SA (Book)

About this Book

Welcome to "The Fuzzing Book"! Software has bugs, and catching bugs can involve lots of effort. This book addresses this problem by automating software testing, specifically by generating tests automatically. Recent years have seen the development of novel techniques that lead to dramatic improvements in test generation and software testing. They now are mature enough to be assembled in a book – even with executable code.

from bookutils import YouTubeVideo
YouTubeVideo("w4u5gCgPlmg")

A Textbook for Paper, Screen, and Keyboard

You can use this book in four ways:

  • You can read chapters in your browser. Check out the list of chapters in the menu above, or start right away with the introduction to testing or the introduction to fuzzing. All code is available for download.

  • You can interact with chapters as Jupyter Notebooks (beta). This allows you to edit and extend the code, experimenting live in your browser. Simply select "Resources → Edit as Notebook" at the top of each chapter. Try interacting with the introduction to fuzzing.

  • You can use the code in your own projects. You can download the code as Python programs; simply select "Resources → Download Code" for one chapter or "Resources → All Code" for all chapters. These code files can be executed, yielding (hopefully) the same results as the notebooks. Even easier: Install the fuzzingbook Python package.

  • You can present chapters as slides. This allows for presenting the material in lectures. Just select "Resources → View slides" at the top of each chapter. Try viewing the slides for the introduction to fuzzing.

Who this Book is for

This work is designed as a textbook for a course in software testing or security testing; as supplementary material in a software testing, security testing, or software engineering course; and as a resource for software developers. We cover random fuzzing, mutation-based fuzzing, grammar-based test generation, symbolic testing, and much more, illustrating all techniques with code examples that you can try out yourself.

News

This book is work in progress. All chapters planned are out now, but we keep on refining text and code with minor and major releases. To get notified on updates, follow us on Mastodon.